Notorious DoppelPaymer gang is active again under a new name, Grief. Both threat...

A previously known malware, Oscorp, transformed into a new Android botnet UBEL c...

Express MRI suffered a data breach compromising patient's medical information. N...

Grief

DoppelPaymer

Ransomware

DoppelPaymer ransomware gang resurrected with a rebranded name Grief, aka Pay or...

Notorious DoppelPaymer gang is active again under a new name, Grief. Both threats share the same code, encryption algorithms, and distribution channel - the Dridex botnet......

29-Jul-2021

3 min read

UBEL

Oscorp

WebRTC

Oscorp transformed into UBEL: Android Credential Stealing malware Operational Ag...

A previously known malware, Oscorp, transformed into a new Android botnet UBEL capable of accessing SMS messages and making unauthorized phone calls using WebRTC protocol... ...

29-Jul-2021

2 min read

Healthcare

Express MRI

Databreach

Data Breach at a US-based Express MRI potentially exposed patient's medical info...

Express MRI suffered a data breach compromising patient's medical information. Names, addresses, and MRI scan information of several patients accessed......

28-Jul-2021

2 min read

XSS

Zimbra

SSRF

Zimbra vulnerabilities can enable unauthorized access to its webmail servers

Zimbra Webmail servers detected two chained vulnerabilities (XSS & SSRF) with JavaScript payloads. Emails and web sessions of victims could be compromised…...

28-Jul-2021

4 min read

Biometrics

IDEMIA

RCE

IDEMIA Biometric devices patched the vulnerability allowing threat actors to ope...

IDEMIA issued a security patch for an 'open remote doors' flaw. The vulnerability currently tracked as CVE-2021-35522 was rated 9.8/10 on the CVSSv3 severity scale......

27-Jul-2021

2 min read

Argo

Kubernetes

Monero

Kubernetes Clusters targeted via Argo Workflows to establish cryptocurrency mine...

Kubernetes installs targeted via Argo Workflows to deploy cryptocurrency miners. It enables threat actors to execute unauthorized code on the victim's device......

27-Jul-2021

3 min read

NTLM

PetitPotam

MS-EFSRPC

New PetiPotam Attack enables threat actors to obtain password hashes of Windows ...

PetiPotam, a new relay attack obtaining password hashes of Windows systems. It forces the domain controller to authenticate using the EfsRpcOpenFileRaw function... ...

27-Jul-2021

4 min read

Microsoft

LemonDuck

Malware

Microsoft alerted of advanced LemonDuck Malware affecting Windows and Linux Syst...

Microsoft warned users of evolved LemonDuck malware with new features allowing key theft, the introduction of backdoors, and security exploits... ...

26-Jul-2021

2 min read

CERT-Ro

Phobos

Cyberint

PHOBOS ransomware targeting the servers of a Clinical Hospital in Bucharest

Health institutions in Bucharest are affected by PHOBOS ransomware. Threat actors demanded ransom for data decryption...

26-Jul-2021

2 min read

PeopleGIS

WizCase

Amazon

WizCase's security team discovered a data breach exposing over 1000GB of data fr...

WizCase identified a major breach exposing nearly 100 cities. 1000 GB of data and over 1.6 million files exposed from misconfigured Amazon buckets......

26-Jul-2021

3 min read